auth/jwt/middleware_test.go - golang-github-go-kit-kit (0c243515-0bf2-4b25-8735-9c1038fa7c1b/v0.4.0)

Tree @0c243515-0bf2-4b25-8735-9c1038fa7c1b/v0.4.0 (Download .tar.gz)

middleware_test.go @0c243515-0bf2-4b25-8735-9c1038fa7c1b/v0.4.0

eb763e0
01ab7a9
 
4a29204
01ab7a9
 
eb763e0
01ab7a9
 
 
3ef148a
 
c6b9e0f
 
3ef148a
f9e217b
 
 
01ab7a9
 
8a60f8a
01ab7a9
 
b33aee6
3ef148a
01ab7a9
cf1aa3d
01ab7a9
 
3ef148a
01ab7a9
cf1aa3d
01ab7a9
 
1b9d538
 
01ab7a9
 
 
 
 
 
b33aee6
 
3ef148a
01ab7a9
b33aee6
c6b9e0f
 
 
 
 
 
 
e32d2aa
 
 
 
c6b9e0f
 
 
 
 
 
 
 
b33aee6
c6b9e0f
 
 
 
 
 
e32d2aa
 
 
 
c6b9e0f
b33aee6
 
3ef148a
 
b33aee6
c6b9e0f
 
 
 
 
 
 
 
cf1aa3d
01ab7a9
cf1aa3d
 
 
3ef148a
cf1aa3d

package jwt

import (
	"context"
	"testing"

	jwt "github.com/dgrijalva/jwt-go"
)

var (
	kid           = "kid"
	key           = []byte("test_signing_key")
	method        = jwt.SigningMethodHS256
	invalidMethod = jwt.SigningMethodRS256
	claims        = Claims{"user": "go-kit"}
	// Signed tokens generated at https://jwt.io/
	signedKey  = "eyJhbGciOiJIUzI1NiIsImtpZCI6ImtpZCIsInR5cCI6IkpXVCJ9.eyJ1c2VyIjoiZ28ta2l0In0.14M2VmYyApdSlV_LZ88ajjwuaLeIFplB8JpyNy0A19E"
	invalidKey = "eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9.e30.vKVCKto-Wn6rgz3vBdaZaCBGfCBDTXOENSo_X2Gq7qA"
)

func TestSigner(t *testing.T) {
	e := func(ctx context.Context, i interface{}) (interface{}, error) { return ctx, nil }

	signer := NewSigner(kid, key, method, claims)(e)
	ctx, err := signer(context.Background(), struct{}{})
	if err != nil {
		t.Fatalf("Signer returned error: %s", err)
	}

	token, ok := ctx.(context.Context).Value(JWTTokenContextKey).(string)
	if !ok {
		t.Fatal("Token did not exist in context")
	}

	if token != signedKey {
		t.Fatalf("JWT tokens did not match: expecting %s got %s", signedKey, token)
	}
}

func TestJWTParser(t *testing.T) {
	e := func(ctx context.Context, i interface{}) (interface{}, error) { return ctx, nil }

	keys := func(token *jwt.Token) (interface{}, error) {
		return key, nil
	}

	parser := NewParser(keys, method)(e)

	// No Token is passed into the parser
	_, err := parser(context.Background(), struct{}{})
	if err == nil {
		t.Error("Parser should have returned an error")
	}

	if err != ErrTokenContextMissing {
		t.Errorf("unexpected error returned, expected: %s got: %s", ErrTokenContextMissing, err)
	}

	// Invalid Token is passed into the parser
	ctx := context.WithValue(context.Background(), JWTTokenContextKey, invalidKey)
	_, err = parser(ctx, struct{}{})
	if err == nil {
		t.Error("Parser should have returned an error")
	}

	// Invalid Method is used in the parser
	badParser := NewParser(keys, invalidMethod)(e)
	ctx = context.WithValue(context.Background(), JWTTokenContextKey, signedKey)
	_, err = badParser(ctx, struct{}{})
	if err == nil {
		t.Error("Parser should have returned an error")
	}

	if err != ErrUnexpectedSigningMethod {
		t.Errorf("unexpected error returned, expected: %s got: %s", ErrUnexpectedSigningMethod, err)
	}

	// Invalid key is used in the parser
	invalidKeys := func(token *jwt.Token) (interface{}, error) {
		return []byte("bad"), nil
	}

	badParser = NewParser(invalidKeys, method)(e)
	ctx = context.WithValue(context.Background(), JWTTokenContextKey, signedKey)
	_, err = badParser(ctx, struct{}{})
	if err == nil {
		t.Error("Parser should have returned an error")
	}

	// Correct token is passed into the parser
	ctx = context.WithValue(context.Background(), JWTTokenContextKey, signedKey)
	ctx1, err := parser(ctx, struct{}{})
	if err != nil {
		t.Fatalf("Parser returned error: %s", err)
	}

	cl, ok := ctx1.(context.Context).Value(JWTClaimsContextKey).(Claims)
	if !ok {
		t.Fatal("Claims were not passed into context correctly")
	}

	if cl["user"] != claims["user"] {
		t.Fatalf("JWT Claims.user did not match: expecting %s got %s", claims["user"], cl["user"])
	}
}